EP4014141A4 - System and method linking to accounts using credential-less authentication - Google Patents

System and method linking to accounts using credential-less authentication Download PDF

Info

Publication number
EP4014141A4
EP4014141A4 EP20865318.8A EP20865318A EP4014141A4 EP 4014141 A4 EP4014141 A4 EP 4014141A4 EP 20865318 A EP20865318 A EP 20865318A EP 4014141 A4 EP4014141 A4 EP 4014141A4
Authority
EP
European Patent Office
Prior art keywords
credential
accounts
less authentication
method linking
linking
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
EP20865318.8A
Other languages
German (de)
French (fr)
Other versions
EP4014141A1 (en
Inventor
William Hockey
Nick AGIN
Baker SHOGRY
Samir Naik
Jonathan CHAO
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Plaid Inc
Original Assignee
Plaid Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Plaid Inc filed Critical Plaid Inc
Publication of EP4014141A1 publication Critical patent/EP4014141A1/en
Publication of EP4014141A4 publication Critical patent/EP4014141A4/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/101Access control lists [ACL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/108Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/72Subscriber identity
EP20865318.8A 2019-09-17 2020-09-17 System and method linking to accounts using credential-less authentication Pending EP4014141A4 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201962901266P 2019-09-17 2019-09-17
PCT/US2020/051289 WO2021055618A1 (en) 2019-09-17 2020-09-17 System and method linking to accounts using credential-less authentication

Publications (2)

Publication Number Publication Date
EP4014141A1 EP4014141A1 (en) 2022-06-22
EP4014141A4 true EP4014141A4 (en) 2023-08-16

Family

ID=74869650

Family Applications (1)

Application Number Title Priority Date Filing Date
EP20865318.8A Pending EP4014141A4 (en) 2019-09-17 2020-09-17 System and method linking to accounts using credential-less authentication

Country Status (5)

Country Link
US (2) US11869005B2 (en)
EP (1) EP4014141A4 (en)
AU (1) AU2020350673A1 (en)
CA (1) CA3154159A1 (en)
WO (1) WO2021055618A1 (en)

Families Citing this family (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8955067B2 (en) * 2012-09-12 2015-02-10 Capital One, Na System and method for providing controlled application programming interface security
CN104954463B (en) * 2015-06-12 2018-05-18 华为技术有限公司 A kind of method, equipment and the system of the subscriber information management of application
AU2019253110B2 (en) 2018-04-13 2022-09-01 Plaid Inc. Secure permissioning of access to user accounts, including secure distribution of aggregated user account data
US11568030B1 (en) * 2019-09-30 2023-01-31 Snap Inc. Phone number based application authentication
US11431658B2 (en) * 2020-04-02 2022-08-30 Paymentus Corporation Systems and methods for aggregating user sessions for interactive transactions using virtual assistants
US11714689B2 (en) 2020-08-18 2023-08-01 Plaid Inc. System and method for managing user interaction flows within third party applications
US11855990B2 (en) * 2020-09-25 2023-12-26 Comcast Cable Communications, Llc Access control using task manager
US11882124B1 (en) * 2020-11-25 2024-01-23 Amazon Technologies, Inc. Account integration with an event-driven application programing interface call manager
US11095756B1 (en) * 2021-03-26 2021-08-17 Flueid Software Corporation Multi-tenant computer systems for producing service results in response to service requests from client compute devices, and methods for the same
US20230066754A1 (en) * 2021-08-25 2023-03-02 Visa International Service Association Digital identity authentication system and method
US20230096672A1 (en) * 2021-09-30 2023-03-30 The Toronto-Dominion Bank System and method of processing a data access request
US11379617B1 (en) 2021-10-22 2022-07-05 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
WO2023069624A1 (en) * 2021-10-22 2023-04-27 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
US11373000B1 (en) 2021-10-22 2022-06-28 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
US11379614B1 (en) 2021-10-22 2022-07-05 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
US11641357B1 (en) * 2021-10-22 2023-05-02 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
US11496483B1 (en) * 2021-10-22 2022-11-08 Akoya LLC Systems and methods for managing tokens and filtering data to control data access
US11663325B1 (en) * 2022-04-05 2023-05-30 Cyberark Software Ltd. Mitigation of privilege escalation
US11683361B1 (en) * 2022-09-15 2023-06-20 Permissionize LLC Systems and methods for asynchronous transfer of user-provided information upon user-provided permission
US11755380B1 (en) 2023-02-16 2023-09-12 Flueid Software Corporation Methods and apparatus for a multi-tenant computer system for producing service results by matching and resolving conflicts of service requests from client compute devices
CN116663071B (en) * 2023-08-01 2023-11-21 山西清众科技股份有限公司 Enterprise secret-related data access management method and device, electronic equipment and medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140215595A1 (en) * 2013-01-31 2014-07-31 Hewlett-Packard Development Company, L.P. Security token based user authentication in a multi-tenanted application
US20150249660A1 (en) * 2006-11-30 2015-09-03 Microsoft Technology Licensing, Llc Authenticating linked accounts
US20180034811A1 (en) * 2016-07-29 2018-02-01 Taiwan Depository & Clearing Corporation Method and System for Authenticating a User with Service Providers Using a Universal One Time Password

Family Cites Families (44)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7577554B2 (en) 2001-07-03 2009-08-18 I2 Technologies Us, Inc. Workflow modeling using an acyclic directed graph data structure
US8751801B2 (en) * 2003-05-09 2014-06-10 Emc Corporation System and method for authenticating users using two or more factors
US7316001B2 (en) 2004-06-05 2008-01-01 Graphlogic Inc. Object process graph system
US20060112388A1 (en) 2004-11-22 2006-05-25 Masaaki Taniguchi Method for dynamic scheduling in a distributed environment
US20080195534A1 (en) 2007-02-12 2008-08-14 Credit Cash, Llc Method for paying an obligation
US20080288621A1 (en) 2007-05-18 2008-11-20 Snell Dustin M Agent workflow system and method
US20090254476A1 (en) 2008-04-04 2009-10-08 Quickreceipt Solutions Incorporated Method and system for managing personal and financial information
US20120030125A1 (en) 2010-05-28 2012-02-02 Ramakrishnannair Arunkumar Method and system for tracking,archiving, reporting, and communication of time, activity, and event details
CA2724297C (en) * 2010-12-14 2013-11-12 Xtreme Mobility Inc. System and method for authenticating transactions through a mobile device
US10142307B1 (en) * 2011-11-27 2018-11-27 Charles Schwab & Co., Inc. System and method for receiving information among computer systems without enabling log ins if the user identifiers are compromised
US8856291B2 (en) 2012-02-14 2014-10-07 Amazon Technologies, Inc. Providing configurable workflow capabilities
US20130238488A1 (en) 2012-03-07 2013-09-12 Clearxchange, Llc System and method for transferring funds
US20140081667A1 (en) 2012-09-06 2014-03-20 Raymond Anthony Joao Apparatus and method for processing and/or providing healthcare information and/or healthcare-related information with or using an electronic healthcare record or electronic healthcare records
US9460474B2 (en) 2013-05-03 2016-10-04 Salesforce.Com, Inc. Providing access to a private resource in an enterprise social networking system
US9922351B2 (en) 2013-08-29 2018-03-20 Intuit Inc. Location-based adaptation of financial management system
US9231942B1 (en) 2013-10-18 2016-01-05 Google Inc. Authentication based on path indicator from a server
US9626720B2 (en) 2013-11-25 2017-04-18 Apple Inc. Linked user accounts
US10019724B2 (en) 2015-01-30 2018-07-10 PayRange Inc. Method and system for providing offers for automated retail machines via mobile devices
US11030587B2 (en) * 2014-04-30 2021-06-08 Mastercard International Incorporated Systems and methods for providing anonymized transaction data to third-parties
US20150350485A1 (en) 2014-05-30 2015-12-03 Kabushiki Kaisha Toshiba Image forming system and image forming method
US10089626B2 (en) 2014-06-23 2018-10-02 The Toronto-Dominion Bank Systems and methods for authenticating user identities in networked computer systems
US10015670B2 (en) * 2014-07-11 2018-07-03 Early Warning Services, Llc System and method for mobile number verification
WO2016040744A1 (en) 2014-09-12 2016-03-17 Id. Me, Inc. Systems and methods for online third-party authentication of credentials
US9824351B2 (en) 2015-05-27 2017-11-21 Bank Of America Corporation Providing access to account information using authentication tokens
US9936526B2 (en) 2015-08-04 2018-04-03 Qualcomm Incorporated Systems and methods to authenticate a request to modify or access information related to an asset in association with a transfer of management
CA3119897C (en) * 2015-09-08 2022-08-09 Plaid Inc. Secure permissioning of access to user accounts, including secure deauthorization of access to user accounts
KR102499397B1 (en) 2015-10-05 2023-02-13 삼성전자 주식회사 Method and apparatus for performing graphics pipelines
US20180295514A1 (en) * 2016-02-03 2018-10-11 Averon Us, Inc. Method and apparatus for facilitating persistent authentication
US10596072B2 (en) 2016-05-03 2020-03-24 Dose Health, LLC Medication dispensing system
US9760645B1 (en) 2016-05-11 2017-09-12 Young Ryong Park System and method for intelligently managing and distributing electronic business cards
US10250612B1 (en) * 2016-07-07 2019-04-02 Amazon Technologies, Inc. Cross-account role management
AU2017299614A1 (en) 2016-07-19 2019-01-31 Akili Interactive Labs, Inc. Platforms to implement signal detection metrics in adaptive response-deadline procedures
SG10201606405RA (en) 2016-08-03 2018-03-28 Mastercard International Inc Methods for controlling access to a financial account
US10965733B2 (en) 2016-08-28 2021-03-30 Vmware, Inc. Efficient, automated distributed-search methods and systems
US10895968B2 (en) 2016-09-08 2021-01-19 DJI Research LLC Graphical user interface customization in a movable object environment
WO2018081833A1 (en) 2016-10-31 2018-05-03 Talla, Inc. State machine methods and apparatus executing natural language communications, and al agents monitoring status and triggering transitions
CA3076586A1 (en) 2017-09-21 2019-03-28 The Authoriti Network, Inc. System and method for authorization token generation and transaction validation
US10796228B2 (en) 2017-09-29 2020-10-06 Oracle International Corporation Machine-learning-based processing of de-obfuscated data for data enrichment
US10452523B1 (en) 2017-12-11 2019-10-22 Intuit Inc. System and method for state based intelligent test generation
US11223480B2 (en) 2018-01-02 2022-01-11 Cyberark Software Ltd. Detecting compromised cloud-identity access information
US11017107B2 (en) 2018-03-06 2021-05-25 Amazon Technologies, Inc. Pre-deployment security analyzer service for virtual computing resources
AU2019253110B2 (en) 2018-04-13 2022-09-01 Plaid Inc. Secure permissioning of access to user accounts, including secure distribution of aggregated user account data
US10810358B2 (en) 2018-10-29 2020-10-20 Fmr Llc Automatic and dynamic generation of customized computer user interface screens
CA3165099A1 (en) 2019-12-17 2021-06-24 Plaid Inc. System and method for assessing a digital interaction with a digital third party account service

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150249660A1 (en) * 2006-11-30 2015-09-03 Microsoft Technology Licensing, Llc Authenticating linked accounts
US20140215595A1 (en) * 2013-01-31 2014-07-31 Hewlett-Packard Development Company, L.P. Security token based user authentication in a multi-tenanted application
US20180034811A1 (en) * 2016-07-29 2018-02-01 Taiwan Depository & Clearing Corporation Method and System for Authenticating a User with Service Providers Using a Universal One Time Password

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO2021055618A1 *

Also Published As

Publication number Publication date
CA3154159A1 (en) 2021-03-25
WO2021055618A1 (en) 2021-03-25
EP4014141A1 (en) 2022-06-22
US20240104567A1 (en) 2024-03-28
US20210081947A1 (en) 2021-03-18
AU2020350673A1 (en) 2022-03-31
US11869005B2 (en) 2024-01-09

Similar Documents

Publication Publication Date Title
EP4014141A4 (en) System and method linking to accounts using credential-less authentication
EP3732856A4 (en) System and method for decentralized-identifier authentication
EP3814948A4 (en) System and method for blockchain-based cross-entity authentication
EP3844637A4 (en) System and method for improved blockchain-implemented smart contract
EP3391617A4 (en) System and method for biometric authentication using social network
EP3545481A4 (en) System and method for improving security of smart contract on blockchain
EP3596906A4 (en) System and method for blockchain-based authentication
EP3929777A4 (en) Authentication system and authentication method
EP3609152A4 (en) Internet-of-things authentication system and internet-of-things authentication method
EP3850786A4 (en) System and method for secure multi-party computation based blockchain transactions
EP3652693A4 (en) Cross network authentication method and system
EP4016425A4 (en) Foreign-trade settlement system, foreign-trade settlement method, and foreign-trade settlement program
EP4066206A4 (en) Systems and methods for image-based nerve fiber extraction
EP3912120A4 (en) Method and system for authenticating digital transactions
EP3920136A4 (en) Authentication system and authentication method
EP3953816A4 (en) System and method employing virtual ledger
EP3665333A4 (en) Concrete block system, method and connector
EP3579173A4 (en) Transaction system and transaction method
EP3847603A4 (en) System and method for payment authentication
EP4004334A4 (en) Horizontal connector system and method
EP3631662A4 (en) Authentication system and method
EP3961593A4 (en) Settlement system and settlement method
EP3982745A4 (en) Coffee system and method
SG11202107512WA (en) Settlement system and settlement method
EP3906504A4 (en) Interaction system and method

Legal Events

Date Code Title Description
STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE INTERNATIONAL PUBLICATION HAS BEEN MADE

PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: REQUEST FOR EXAMINATION WAS MADE

17P Request for examination filed

Effective date: 20220315

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

DAV Request for validation of the european patent (deleted)
DAX Request for extension of the european patent (deleted)
A4 Supplementary search report drawn up and despatched

Effective date: 20230719

RIC1 Information provided on ipc code assigned before grant

Ipc: H04W 12/084 20210101ALI20230713BHEP

Ipc: H04W 12/06 20210101ALI20230713BHEP

Ipc: H04L 9/32 20060101ALI20230713BHEP

Ipc: G06F 21/31 20130101ALI20230713BHEP

Ipc: G06F 21/30 20130101ALI20230713BHEP

Ipc: G06F 21/62 20130101ALI20230713BHEP

Ipc: G06F 21/41 20130101AFI20230713BHEP